Re: [sidr] GOST & SIDR

To: Randy Bush <randy at psg.com>
Subject: Re: [sidr] GOST & SIDR
From: Sandra Murphy <sandy at sparta.com>
Date: Mon, 20 Apr 2009 19:17:54 -0400 (Eastern Daylight Time)
Cc: sidr at ietf.org
Delivered-to: sidr at core3.amsl.com
In-reply-to: <m2myabc5c1.wl%randy at psg.com>
List-archive: <http://www.ietf.org/mail-archive/web/sidr>
List-help: <mailto:sidr-request@ietf.org?subject=help>
List-id: Secure Interdomain Routing <sidr.ietf.org>
List-post: <mailto:sidr@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
References: <D556D856-C2C3-4D60-BD8C-472619375DFB at tcb.net> <49DA347E.8010801 at burkov.aha.ru> <alpine.BSF.2.00.0904161158110.27241 at fledge.watson.org> <m2ocuwtdgi.wl%randy at psg.com> <alpine.BSF.2.00.0904171136500.30042 at fledge.watson.org> <m2tz4jc6ti.wl%randy at psg.com> <alpine.BSF.2.00.0904201819210.87636 at fledge.watson.org> <m2myabc5c1.wl%randy at psg.com>

On Mon, 20 Apr 2009, Randy Bush wrote:

There may (or will) be communities that WILL NOT sign with (=issue
certificates signed by) algorithm X (=RSA).  They might happily sign
with algorithm Y (=GOST).


and there will be communities which run x.25 or decnet.  not a problem
to me.

Except that if a significant portion of the world uses an algorithm yourvalidator code can't handle, then you can't validate routes to that partof the world.

Which means you could be sending your packets to some destinations downsome dark alley.

I would think that the validation of routes is not only of benefit inpackets reaching you, but in you being more confident that your packetsare going where they are meant to go.

(All of this "you" and "your" is only personification - I could say "one'spackets", but that's just a bit too precious.)

Are you really advocating a system that could not support a change ofalgorithm? A new algorithm means a new RPKI-v2? (How is that differentfrom an RPKI with a new OID in the alg field?)


--Sandy


randy
_______________________________________________
sidr mailing list
sidr at ietf.org
https://www.ietf.org/mailman/listinfo/sidr

Follow-Ups:
- Re: [sidr] GOST & SIDR
  - From: Randy Bush

References:
- [sidr] GOST & SIDR
  - From: Danny McPherson
- Re: [sidr] GOST & SIDR
  - From: Dmitry Burkov
- Re: [sidr] GOST & SIDR
  - From: Samuel Weiler
- Re: [sidr] GOST & SIDR
  - From: Randy Bush
- Re: [sidr] GOST & SIDR
  - From: Samuel Weiler
- Re: [sidr] GOST & SIDR
  - From: Randy Bush
- Re: [sidr] GOST & SIDR
  - From: Samuel Weiler
- Re: [sidr] GOST & SIDR
  - From: Randy Bush

Prev by Date: Re: [sidr] GOST & SIDR
Next by Date: Re: [sidr] GOST & SIDR
Previous by thread: Re: [sidr] GOST & SIDR
Next by thread: Re: [sidr] GOST & SIDR
Index(es):
- Date
- Thread

Re: [sidr] GOST & SIDR

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.